exploitDog

CVE-2025-31782

Опубликовано: 01 апр. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Missing Authorization vulnerability in pupunzi mb.YTPlayer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects mb.YTPlayer: from n/a through 3.3.8.

Ссылки

https://patchstack.com/database/wordpress/plugin/wpmbytplayer/vulnerability/wordpress-mb-ytplayer-plugin-3-3-8-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 44%

0.00218

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-2mp5-jmvp-3q28

CVSS3: 5.4

github

10 месяцев назад

Missing Authorization vulnerability in pupunzi mb.YTPlayer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects mb.YTPlayer: from n/a through 3.3.8.

EPSS

Процентиль: 44%

0.00218

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-862